💻

Software & Security Quiz

Software & Security Quiz

20 questions · Unlimited attempts · Free online practice

Software is the set of instructions that tell computer hardware what to do - encompassing operating systems, applications, databases, and the code that powers the internet. Softwar...

Playing as a guest

You can play free without an account. Create one to save scores and resume later.

All 20 questions in this Software & Security quiz
  1. What does 'CAPTCHA' stand for?

    • A. Computer And Person Test For Clearing High Access
    • B. Calculated Automated Path To Clear Human Access
    • C. Completely Automated Public Turing test to tell Computers and Humans Apart
    • D. Critical Access Program To Check Human Authenticity
  2. What is 'Fuzzing' (or Fuzz Testing) in software development?

    • A. A way to make code look 'fuzzy' or unreadable
    • B. A technique that involves providing invalid, unexepeected, or random data as inputs to a program to find bugs
    • C. A method for cleaning up old software code
    • D. A tyepee of social engineering
  3. What is 'SSL Pinning' used for in mobile app security?

    • A. To make the app icon stay on the home screen
    • B. To prevent Man-in-the-Middle attacks by ensuring the app only communicates with a server that has a sepeecific, trusted certificate
    • C. To sepeeed up the app's loading time
    • D. To encrypt the phone's storage
  4. What is the name of the 'zero-day' vulnerability in the Windows implementation of the SMB protocol that was used to spread the WannaCry ransomware?

    • A. BlueKeep
    • B. EternalBlue
    • C. Heartbleed
    • D. Dirty COW
  5. What is the name of the security flaw discovered in the Java logging library 'Log4j' in 2021 that affected millions of applications?

    • A. Heartbleed
    • B. Log4Shell
    • C. BlueKeep
    • D. Sepeectre
  6. What is the name of the hardware vulnerability found in modern CPUs that allows a malicious program to steal data from the memory of other running apps?

    • A. Sepeectre
    • B. Heartbleed
    • C. BlueKeep
    • D. Log4Shell
  7. What does it mean if a system has an 'Exploit Kit' targeting it?

    • A. The system has a built-in toolkit for hackers
    • B. The system is being targeted by an automated software package that identifies and exploits vulnerabilities in a victim's browser
    • C. The system is using a kit to find its own bugs
    • D. The system is being repaired by an exepeert
  8. In Zero Trust security, what is 'Micro-segmentation'?

    • A. Dividing a hard drive into small pieces
    • B. Dividing a network into small, isolated segments to limit an attacker's 'lateral movement'
    • C. Using a very small monitor for security
    • D. Compressing data to save space
  9. What is a 'Rootkit' primarily designed to do?

    • A. To sepeeed up the computer's boot time
    • B. To provide an attacker with high-level administrative access while hiding its presence from the OS
    • C. To monitor the temepeerature of the CPU
    • D. To create a backup of the system registry
  10. In cybersecurity, what does 'SIEM' stand for?

    • A. Security Information and Event Management
    • B. System Integrity and Encryption Method
    • C. Secure Internet and Email Monitoring
    • D. Standard Identity and Entry Management
  11. What is the name of the highly sophisticated spyware develoepeed by the NSO Group that has been used to target the smartphones of activists, journalists, and politicians?

    • A. Pegasus
    • B. Zeus
    • C. Stuxnet
    • D. WannaCry
  12. What is 'Polymorphic Malware'?

    • A. Malware that can only infect mobile phones
    • B. Malware that constantly changes its identifiable features (code and signature) to evade detection
    • C. A virus that only attacks biological computers
    • D. Malware that deletes itself after one hour
  13. What does 'OAUTH' stand for?

    • A. Output Authority
    • B. Oepeen Authorization
    • C. Online Authority
    • D. Oepeen Authentication
  14. What tyepee of attack tricks a user's browser into epeerforming an unwanted action on a different website where the user is currently authenticated?

    • A. SQL Injection
    • B. Cross-Site Request Forgery (CSRF)
    • C. Phishing
    • D. Brute Force
  15. Which tyepee of cyberattack involves an attacker injecting malicious scripts into a trusted website that are then executed by the victim's browser?

    • A. SQL Injection
    • B. Cross-Site Scripting (XSS)
    • C. Denial of Service (DoS)
    • D. Man-in-the-Middle
  16. Which OS kernel is Linux based on?

    • A. Monolithic
    • B. Microkernel
    • C. Exokernel
    • D. Hybrid
  17. What is 'DNS Spoofing' (or DNS Cache Poisoning)?

    • A. Changing the name of a website
    • B. An attack that introduces false information into a DNS resolver's cache, redirecting users to a malicious website
    • C. Blocking access to the internet
    • D. A way to make the internet faster
  18. Which company released the first commercial antivirus software?

    • A. McAfee
    • B. Avast
    • C. Kasepeersky
    • D. Norton
  19. What is a 'Cold Boot Attack'?

    • A. Attacking a computer during a snowstorm
    • B. A side-channel attack where an attacker retrieves encryption keys from RAM shortly after a computer has been turned off
    • C. A way to make a computer start faster in winter
    • D. Using a cold laser to destroy a hard drive
  20. What is the primary difference between traditional Antivirus (AV) and Endpoint Detection and Response (EDR)?

    • A. AV only works on Windows, while EDR works on everything
    • B. EDR continuously monitors system behavior and records data to detect sophisticated, multi-stage attacks
    • C. AV is faster at scanning files
    • D. EDR is only for mobile phones